idp 2.4.1 mdui extension

MA Lanxin ma at ihep.ac.cn
Wed May 13 09:38:00 EDT 2015 

Hello,

I added mdui elements by hand into my IDP metadata. Hele is a part of my idp metadata.

<EntityDescriptor 
    xmlns="urn:oasis:names:tc:SAML:2.0:metadata" 
    entityID="https://idp.b.ac.cn/idp/shibboleth" 
    xmlns:ds="http://www.w3.org/2000/09/xmldsig#" 
    xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" 
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
    <IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
        <Extensions>i
            <shibmd:Scope regexp="false">ac.cn</shibmd:Scope>
            <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
                <mdui:DisplayName xml:lang="en">my IDP</mdui:DisplayName>
                <mdui:Logo height="60" width="80" xml:lang="en">http://a.b.ac.cn/images/iheplogo.gif</mdui:Logo>
            </mdui:UIInfo>
        </Extensions>

When I link to an application which is protected by SP, it jump to DS page where we can select IDP. I still cannot see DisplayName and Logo at this DS page. Should I configure something else ?

ANother question, Can mdui elements be added automatically in idp metadata when I link to, for example: https://idp.b.ihep.ac.cn/idp/profile/Metadata/SAML ?

Thank you very much,

Regards,
Lanxin


> -----原始邮件-----
> 发件人: "Peter Schober" <peter.schober at univie.ac.at>
> 发送时间: 2015年5月7日 星期四
> 收件人: users at shibboleth.net
> 抄送: 
> 主题: Re: idp 2.4.1 mdui extension
> 
> * MA Lanxin <ma at ihep.ac.cn> [2015-05-07 16:42]:
> > Here is a part of the metadata of my IDP.
> > 
> > <?xml version="1.0" encoding="UTF-8"?>
> > <EntityDescriptor 
> >     xmlns="urn:oasis:names:tc:SAML:2.0:metadata" 
> >     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
> >     xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" 
> >     xmlns:ds="http://www.w3.org/2000/09/xmldsig#" 
> >     entityID="https://idp.b.ac.cn/idp/shibboleth">
> >     <IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
> >        <Extensions>
> >           <shibmd:Scope regexp="false">ac.cn</shibmd:Scope>
> >        </Extensions>
> > 
> > I cannot see sstc-saml-metadata-ui-v1.0.xsd etc. in my metadata.
> > Could somebody give me some clues on how to do it? in order to use
> > mdui extension to define DisplayName and Logo in IDP metadata.
> 
> Include a namespace declaration in your EntityDescriptor or
> EntitiesDescriptor, e.g.
>   xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"
> 
> Then add elements like this:
> 
>     <IDPSSODescriptor protocolSupportEnumeration="....">
>       <Extensions>
>         <shibmd:Scope regexp="false">b.ac.cn</shibmd:Scope>
>         <mdui:UIInfo>
>           [ as per the MDUI spec ]
>         </mdui:UIInfo>
>         <mdui:DiscoHints>
>           [ as per the MDUI spec ]
>         </mdui:DiscoHints>
>       </Extensions>
> 
> -peter
> -- 
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net

More information about the users mailing list